【作者】 李勇；

【导师】 揭金良；

【作者基本信息】 成都理工大学 ， 计算机软件与理论， 2008， 硕士

【摘要】 针对基于WEB应用开发和部署的应用系统来说,认证和授权是每一个系统的基础构件,但是各种类型的Web应用系统在安全体系的构建方法上都具有很强的共性。对于一个具有多重应用系统的组织机构来说,可以构建一个和各业务应用系统耦合度较小的统一认证授权控制平台,实现统一的安全认证、资源的授权。本文正是基于此目的而提出构建与各应用系统无关的统一认证和授权的思想,即在J2EE框架中,以Spring的MVC模式下,结合Hibernate的持久层映射框架,以及LDAP良好的目录层级存储结构,开发出一个统一认证授权平台,通过平台的构建,实现在各个系统中的统一的用户管理,并且统一代替各应用系统的认证和授权,这样可以使认证授权应用与具体业务应用逻辑应用分开,也降低了各应用系统的开发成本和复杂度,大大提高了整个系统的安全保护度。基于以上思想和理论,本文重点讨论了J2EE框架Spring MVC模式以及Hibernate持久层框架技术,以及相关的认证授权理论,最后结合统一认证授权平台的实现,对其相应的应用技术进行了分析.更多还原

【Abstract】 For WEB-based application development and deployment of applications, authentication and authorization system is the basis of each component, but all types of Web applications in the security system construction methods have a strong common. For a multi-application system of organizations, can build a business application systems and the coupling of the unity of smaller certification authority control platform, the reunification of the security authentication, authorization of resources. This article is based on the purpose of this proposal of building a system has nothing to do with the application of the unified authentication and authorization of the idea that the J2EE framework, to the Spring MVC model, with Hibernate mapping framework of a lasting and good LDAP directory level storage Structure, and developed a unified platform certification authority, through the platform of the building, and in various systems in a unified user management, and uniform application of the system to replace the authentication and authorization, which would enable authentication and authorization of specific business applications separate application logic , Also reduced the application system development costs and complexity, greatly improving the overall system of security protection.Based on the above ideas and theories, the paper focused on the J2EE framework Spring MVC Hibernate mode and durable framework of the technology, and the relevant certification authority theory, with the final certification authority unified platform for the realization of their corresponding applications were analyzed.更多还原